Mailing List Archive | ports@openbsd.org

From:: Kirill A. Korinsky <kirill@korins.ky>
Subject:: security/nikto: update to 2.5.0
To:: OpenBSD ports <ports@openbsd.org>
Cc:: Nigel Taylor <nigel@openbsd.org>
Date:: Sun, 10 Nov 2024 16:55:42 +0100
Download raw body.
Thread
2024-11-10 15:55 Kirill A. Korinsky:
security/nikto: update to 2.5.0
ports@, Nigel,

security/nikto is quite outdated (2.1.6 was released in 2015!), and I'd like
to update it to the last version 2.5.0

Here a trivial update which was tested on -current/amd64 against Synology NAS.

Ok?

Index: Makefile
===================================================================
RCS file: /home/cvs/ports/security/nikto/Makefile,v
diff -u -p -r1.29 Makefile
--- Makefile	8 Nov 2022 11:17:06 -0000	1.29
+++ Makefile	10 Nov 2024 15:29:55 -0000
@@ -2,8 +2,7 @@ COMMENT =	web and CGI vulnerability scan
 
 GH_ACCOUNT =	sullo
 GH_PROJECT =	nikto
-GH_TAGNAME =	2.1.6
-REVISION =	2
+GH_TAGNAME =	2.5.0
 
 EPOCH = 	0
 CATEGORIES =	security www
@@ -26,7 +25,7 @@ pre-configure:
 		s%# DOCDIR=.*%DOCDIR=${PREFIX}/share/doc/nikto%; \
 		s%# DBDIR=.*%DBDIR=/var/db/nikto/databases%; \
 		s%NIKTODTD=.*%NIKTODTD=${PREFIX}/share/doc/nikto/nikto.dtd%' \
-		${WRKSRC}/program/nikto.conf
+		${WRKSRC}/program/nikto.conf.default
 
 do-install:
 	${INSTALL_DATA_DIR} ${PREFIX}/share/nikto/databases
@@ -37,7 +36,7 @@ do-install:
 
 	${INSTALL_SCRIPT} ${WRKSRC}/program/nikto.pl ${PREFIX}/bin/nikto
 	${INSTALL_SCRIPT} ${WRKSRC}/program/replay.pl ${PREFIX}/bin/replay
-	${INSTALL_DATA} ${WRKSRC}/program/nikto.conf \
+	${INSTALL_DATA} ${WRKSRC}/program/nikto.conf.default \
 		${PREFIX}/share/examples/nikto/nikto.conf
 
 	${INSTALL_DATA} ${WRKSRC}/program/databases/!(*.orig) \
@@ -47,9 +46,7 @@ do-install:
 	${INSTALL_DATA} ${WRKSRC}/program/templates/!(*.orig) \
 			${PREFIX}/share/nikto/templates
 
-	${INSTALL_DATA} ${WRKSRC}/program/docs/nikto_manual.html \
-			${PREFIX}/share/doc/nikto
-	${INSTALL_DATA} ${WRKSRC}/program/docs/CHANGES.txt \
+	${INSTALL_DATA} ${WRKSRC}/program/docs/nikto_schema.sql \
 			${PREFIX}/share/doc/nikto
 	${INSTALL_DATA} ${WRKSRC}/program/docs/nikto.dtd \
 			${PREFIX}/share/doc/nikto
Index: distinfo
===================================================================
RCS file: /home/cvs/ports/security/nikto/distinfo,v
diff -u -p -r1.16 distinfo
--- distinfo	27 Aug 2017 21:47:43 -0000	1.16
+++ distinfo	10 Nov 2024 15:26:27 -0000
@@ -1,2 +1,2 @@
-SHA256 (nikto-2.1.6.tar.gz) = wXMa5BM9OHlxi7dgWo05WyA2ZoUF7/vLvKpNrk6fJ/I=
-SIZE (nikto-2.1.6.tar.gz) = 490743
+SHA256 (nikto-2.5.0.tar.gz) = +w3EsrySyzH4Bp9k6k1HKVvNEQZ6cYTalVdD3n2XcJ0=
+SIZE (nikto-2.5.0.tar.gz) = 435886
Index: patches/patch-program_nikto_pl
===================================================================
RCS file: /home/cvs/ports/security/nikto/patches/patch-program_nikto_pl,v
diff -u -p -r1.2 patch-program_nikto_pl
--- patches/patch-program_nikto_pl	11 Mar 2022 19:53:34 -0000	1.2
+++ patches/patch-program_nikto_pl	10 Nov 2024 15:39:47 -0000
@@ -1,6 +1,7 @@
---- program/nikto.pl.orig	Thu Jul  9 15:06:04 2015
-+++ program/nikto.pl	Mon Feb  1 19:37:41 2016
-@@ -358,7 +358,7 @@ sub setup_dirs {
+Index: program/nikto.pl
+--- program/nikto.pl.orig
++++ program/nikto.pl
+@@ -364,7 +364,7 @@ sub setup_dirs {
          $CONFIGFILE{'TEMPLATEDIR'} = "$CONFIGFILE{'EXECDIR'}/templates";
      }
      unless (defined $CONFIGFILE{'DOCDIR'}) {
Index: patches/patch-program_plugins_nikto_core_plugin
===================================================================
RCS file: patches/patch-program_plugins_nikto_core_plugin
diff -N patches/patch-program_plugins_nikto_core_plugin
--- patches/patch-program_plugins_nikto_core_plugin	11 Mar 2022 19:53:34 -0000	1.2
+++ /dev/null	1 Jan 1970 00:00:00 -0000
@@ -1,12 +0,0 @@
---- program/plugins/nikto_core.plugin.orig	Thu Jul  9 15:06:04 2015
-+++ program/plugins/nikto_core.plugin	Mon Feb  1 19:27:53 2016
-@@ -1967,8 +1967,7 @@ sub check_updates {
-                 if ($remotemsg ne "") { nprint("+ $server message: $remotemsg"); }
-                 exit;
-             }
--            push(@DBTOGET, $remotefile);
--            if ($remotefile !~ /^db_/) { $code_updates = 1; }
-+            if ($remotefile =~ /^db_/) { push(@DBTOGET, $remotefile); }
-         }
-     }
- 
Index: pkg/PLIST
===================================================================
RCS file: /home/cvs/ports/security/nikto/pkg/PLIST,v
diff -u -p -r1.16 PLIST
--- pkg/PLIST	8 Nov 2022 11:17:06 -0000	1.16
+++ pkg/PLIST	10 Nov 2024 15:32:20 -0000
@@ -4,9 +4,8 @@ bin/nikto
 bin/replay
 @man man/man1/nikto.1
 share/doc/nikto/
-share/doc/nikto/CHANGES.txt
 share/doc/nikto/nikto.dtd
-share/doc/nikto/nikto_manual.html
+share/doc/nikto/nikto_schema.sql
 share/examples/nikto/
 share/examples/nikto/nikto.conf
 @sample ${SYSCONFDIR}/nikto.conf
@@ -20,6 +19,8 @@ share/nikto/databases/db_content_search
 @sample /var/db/nikto/databases/db_content_search
 share/nikto/databases/db_dictionary
 @sample /var/db/nikto/databases/db_dictionary
+share/nikto/databases/db_domino
+@sample /var/db/nikto/databases/db_domino
 share/nikto/databases/db_drupal
 @sample /var/db/nikto/databases/db_drupal
 share/nikto/databases/db_embedded
@@ -40,8 +41,6 @@ share/nikto/databases/db_realms
 @sample /var/db/nikto/databases/db_realms
 share/nikto/databases/db_server_msgs
 @sample /var/db/nikto/databases/db_server_msgs
-share/nikto/databases/db_subdomains
-@sample /var/db/nikto/databases/db_subdomains
 share/nikto/databases/db_tests
 @sample /var/db/nikto/databases/db_tests
 share/nikto/databases/db_variables
@@ -59,6 +58,9 @@ share/nikto/plugins/nikto_content_search
 share/nikto/plugins/nikto_cookies.plugin
 share/nikto/plugins/nikto_core.plugin
 share/nikto/plugins/nikto_dictionary_attack.plugin
+share/nikto/plugins/nikto_dishwasher.plugin
+share/nikto/plugins/nikto_docker_registry.plugin
+share/nikto/plugins/nikto_domino.plugin
 share/nikto/plugins/nikto_drupal.plugin
 share/nikto/plugins/nikto_embedded.plugin
 share/nikto/plugins/nikto_favicon.plugin
@@ -69,12 +71,14 @@ share/nikto/plugins/nikto_ms10_070.plugi
 share/nikto/plugins/nikto_msgs.plugin
 share/nikto/plugins/nikto_multiple_index.plugin
 share/nikto/plugins/nikto_negotiate.plugin
+share/nikto/plugins/nikto_origin_reflection.plugin
 share/nikto/plugins/nikto_outdated.plugin
 share/nikto/plugins/nikto_parked.plugin
 share/nikto/plugins/nikto_paths.plugin
 share/nikto/plugins/nikto_put_del_test.plugin
 share/nikto/plugins/nikto_report_csv.plugin
 share/nikto/plugins/nikto_report_html.plugin
+share/nikto/plugins/nikto_report_json.plugin
 share/nikto/plugins/nikto_report_nbe.plugin
 share/nikto/plugins/nikto_report_sqlg.plugin
 share/nikto/plugins/nikto_report_text.plugin
@@ -84,7 +88,7 @@ share/nikto/plugins/nikto_shellshock.plu
 share/nikto/plugins/nikto_siebel.plugin
 share/nikto/plugins/nikto_sitefiles.plugin
 share/nikto/plugins/nikto_ssl.plugin
-share/nikto/plugins/nikto_subdomain.plugin
+share/nikto/plugins/nikto_strutshock.plugin
 share/nikto/plugins/nikto_tests.plugin
 share/nikto/templates/
 share/nikto/templates/htm_close.tmpl


-- 
wbr, Kirill
2024-11-10 15:55 Kirill A. Korinsky:
security/nikto: update to 2.5.0